Researcher Who Stopped WannaCry Ransomware Detained in US After Def Con
Source: Vice Motherboard
On Wednesday, US authorities detained a researcher who goes by the handle MalwareTech, best known for stopping the spread of the WannaCry ransomware virus.
In May, WannaCry infected hospitals in the UK, a Spanish telecommunications company, and other targets in Russia, Turkey, Germany, Vietnam, and more. Marcus Hutchins, a researcher from cybersecurity firm Kryptos Logic, inadvertently stopped WannaCry in its tracks by registering a specific website domain included in the malware's code.
At the time of writing it is not clear what charges, if any, Hutchins may face.
Motherboard verified that a detainee called Marcus Hutchins, 23, was being held at the Henderson Detention Center in Nevada early on Thursday. A few hours after, Hutchins was moved to another facility, according to a close personal friend.
Read more: https://motherboard.vice.com/en_us/article/ywp8k5/researcher-who-stopped-wannacry-ransomware-detained-in-us-after-def-con
No contact, no charges, no information. This is weird and not good. Hutchins is a UK citizen, so should be allowed to visit the US without a visa, was not working without a visa, and doesn't appear to have violated any laws.
WinstonSmith4740
(3,059 posts)I'm picturing this poor guy being snatched out of his hotel room hallway, and held incommunicado somewhere. None of this makes any sense. I remember when this happened. This guy was hailed as a hero. WTF is going on? Did Hutchins somehow piss off Putin, and Donnie feels like he has to placate his boss after the sanctions screw-up?
riversedge
(70,417 posts)politicat
(9,808 posts)They have a history of treating whites and greys (hacking in the public interest, hacking for hire as security consultants) more harshly than blackhats, since by definition, a white to grey has to have their real name visible and is thus more vulnerable.
When people ask why hackers and digital activists use handles and wear masks -- this is why.
WinstonSmith4740
(3,059 posts)I'm not being snarky here. I'm serious...why was he arrested in the first place? Why is no one talking? This was a convention of hackers...why him?
politicat
(9,808 posts)There's a good chance he did nothing at all, or did something as a contract hacker (a penetration test) on the authority of his employer/contractor for the benefit of his employer/contractor. Or... ??
I wish I had an answer to any of your questions, but we don't. And that's terrifying.
Response to WinstonSmith4740 (Reply #5)
Pacifist Patriot This message was self-deleted by its author.
Renew Deal
(81,895 posts)Last edited Thu Aug 3, 2017, 03:25 PM - Edit history (1)
He reverse engineered the virus and registered the domain name he found in it. A domain name is basically what democraticunderground.com is. He did nothing wrong as far as I know.
Igel
(35,383 posts)As far as I know, he did nothing wrong. But the only thing I know he did was foil the WannaCry attack. Surely he had a life before that and after.
Funny thing about the legal system--if you do bad things and then a good thing all is not forgiven. Don't know that he did anything bad. Being picked up by the FBI tends to make me think he did, or it looks like he did.
LiberalArkie
(15,733 posts)Renew Deal
(81,895 posts)ancianita
(36,207 posts)seems a little unfair, but my guess is that there's way more to the global surveillance operations than we're being told, and that Hutchins might help the FBI get into all the server connections that the Kremlin operates.
http://www.latimes.com/business/la-fi-tn-kryptos-logic-wannacry-20170629-story.html
Just speculating that the indictment might be used as cover for gathering intel.
LiberalArkie
(15,733 posts)operation.
hack89
(39,171 posts)"Marcus Hutchins... a citizen and resident of the United Kingdom, was arrested in the United States on 2 August, 2017, in Las Vegas, Nevada, after a grand jury in the Eastern District of Wisconsin returned a six-count indictment against Hutchins for his role in creating and distributing the Kronos banking Trojan," it said.
"The charges against Hutchins, and for which he was arrested, relate to alleged conduct that occurred between in or around July 2014 and July 2015."
http://www.bbc.com/news/uk-england-40820837
riversedge
(70,417 posts).....Shortly before his arrest, Hutchins was in Las Vegas during Black Hat and Def Con, two annual hacking conferences.
"We are aware a UK national has been arrested but it's a matter for the authorities in the US," a spokesperson for the UK's National Crime Agency told Motherboard in an email.
A spokesperson from the UK's National Cyber Security Centre told Motherboard in an email, "We are aware of the situation. This is a law enforcement matter and it would be inappropriate to comment further."
yallerdawg
(16,104 posts)Not Bill Gates, you say?
LiberalArkie
(15,733 posts)hack89
(39,171 posts)"Marcus Hutchins... a citizen and resident of the United Kingdom, was arrested in the United States on 2 August, 2017, in Las Vegas, Nevada, after a grand jury in the Eastern District of Wisconsin returned a six-count indictment against Hutchins for his role in creating and distributing the Kronos banking Trojan," it said.
"The charges against Hutchins, and for which he was arrested, relate to alleged conduct that occurred between in or around July 2014 and July 2015."
http://www.bbc.com/news/uk-england-40820837
William Seger
(10,791 posts)(Ninja'd by hack89)
woundedkarma
(498 posts)I follow some infosec people on twitter. And they are all talking about this right now. The FBI is claiming he created malware around 2014 called "kronos" but at the same time he sent a message to another infosec person asking for a copy of kronos. (they're all malware researchers, that's how he stopped wannacry and that's why he messes with this stuff) Why would he do that if he created it?
Nobody is quite sure if he did it or not. It's clear that he saved a lot of lives when he stopped wannacry.
PSPS
(13,628 posts)Here's the indictment:
https://assets.documentcloud.org/documents/3912524/Kronos-Indictment-R.pdf